Position report authentication
Abstract
An example method of position information authentication for a location application performed by a UE, the method comprising determining by a position engine, a position estimate of the UE and determining by the position engine, a position report message indicating the position estimate. The method also comprises determining by a security module, a digital signature generated using a first private key known to the UE and the position report message. The method further comprises transmitting the position report message associated with the digital signature to a location application executed by the UE or another device, wherein the location application is configured to provide one or more location-based services to the UE using the position estimate responsive to a successful authentication of the position report message using the digital signature generated based on the first private key.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1 . A method of position information authentication of a User Equipment (UE), the UE having a unique identification (ID) associated therewith, for a location application, the method comprising:
determining, by a position engine of the UE, a position estimate of the UE; determining, by the position engine, a position report message indicating the unique ID and the position estimate; determining, by a security module of the UE, a digital signature generated using a first private key of the UE; digitally signing the position report message using the digital signature generated using the first private key; providing the digitally signed position report message and the unique ID to the location application, wherein the location application is configured to determine whether to authenticate the digitally signed position report message using the unique ID and a public key lookup table that associates a respective public key with the unique ID of the UE; responsive to determining that the first private key has been compromised, determining by the security module of the UE, a subsequent digital signature generated using a second private key of the UE; and providing to the location application a subsequent position report message digitally signed using the subsequent digital signature.
2 . The method of claim 1 , wherein the unique ID comprises:
international mobile equipment identity (IMEI) of the UE; international mobile subscriber identity (IMSI) of the UE; media access control (MAC) address; or any combination thereof.
3 . The method of claim 1 , wherein the location application is executed by the UE.
4 . The method of claim 3 , further comprising:
responsive to the location application being unable to authenticate the position report message, abandoning the position report message.
5 . The method of claim 1 , further comprising:
transmitting the unique ID to a server; receiving from the server, the respective public key associated with the unique ID and the first private key.
6 . The method of claim 3 , further comprising:
responsive to determining that the second private key has been compromised, disabling the UE from accessing the location application.
7 . The method of claim 1 , wherein the location application is configured to provide one or more location-based services to the UE upon authenticating the subsequent position report message.
8 . The method of claim 1 , wherein the position estimate is determined using a reference signal comprising a global navigation satellite system (GNSS) signal.
9 . A method of position information authentication of a User Equipment (UE) for a location application, the method performed by a server and comprising:
receiving, from the UE, a digitally signed position report message indicating a position estimate of the UE and a unique identification (ID) associated with the UE, wherein the digitally signed position report message is digitally signed using a digital signature generated using a first private key of the UE; based on the first private key having been compromised, receiving, from the UE, a subsequent digitally signed position report message, wherein the subsequent digitally signed position report message is digitally signed using a digital signature generated based on a second private key; determining whether to authenticate the subsequent digitally signed position report message using the unique ID and a public key lookup table that associates a respective public key with the unique ID of the UE; responsive to determining to authenticate the subsequent digitally signed position report message, executing the location application, wherein the location application is configured to authenticate the subsequent digitally signed position report message based on the respective public key and provide one or more location-based services to the UE using the position estimate.
10 . The method of claim 9 , wherein the unique ID comprises:
international mobile equipment identity (IMEI) of the UE; international mobile subscriber identity (IMSI) of the UE; media access control (MAC) address; or any combination thereof.
11 . The method of claim 9 , wherein the digitally signed position report message and the subsequent digitally signed position report message are provided by a security module of the UE.
12 . The method of claim 9 , further comprising:
responsive to a determination that the second private key has been compromised, disabling the UE from accessing the location application.
13 . The method of claim 9 , wherein the location-based services include at least one of: navigation, search, location-based advertising, or social networking.
14 . The method of claim 9 , wherein the position estimate is determined using a reference signal comprising a global navigation satellite system (GNSS) signal.
15 . A user equipment (UE) for position information authentication for a location application, the UE comprising:
a transceiver; a memory; and one or more processors communicatively coupled with the transceiver and the memory, wherein the one or more processors are configured to:
determine a position estimate of the UE;
determine a position report message indicating a unique identification (ID) associated with the UE and the position estimate;
determine a digital signature generated using a first private key of the UE;
digitally sign the position report message using the digital signature generated using the first private key;
provide the digitally signed position report message to the location application, wherein the location application is configured to determine whether to authenticate the digitally signed position report message using the unique ID and a public key lookup table that associates a respective public key with the unique ID of the UE;
responsive to determining that the first private key has been compromised, determine a subsequent digital signature generated using a second private key of the UE; and
provide to the location application a subsequent position report message digitally signed using the subsequent digital signature.
16 . The UE of claim 15 , wherein the unique ID comprises:
international mobile equipment identity (IMEI) of the UE; international mobile subscriber identity (IMSI) of the UE; media access control (MAC) address; or any combination thereof.
17 . The UE of claim 15 , wherein the location application is executed by the UE.
18 . The UE of claim 17 , wherein the one or more processors are further configured to, responsive to the location application being unable to authenticate the position report message, abandon the position report message.
19 . The UE of claim 15 , wherein the one or more processors are further configured to:
transmit the unique ID to a server; receive, from the server, a first public key associated with the unique ID and the first private key.
20 . The UE of claim 17 , wherein the one or more processors are further configured to:
responsive to determining that the second private key has been compromised, disable the UE from accessing the location application.
21 . The UE of claim 15 , wherein the location application is configured to provide one or more location-based services to the UE upon authenticating the subsequent position report message.
22 . The UE of claim 15 , wherein the position estimate is determined using a reference signal comprising a global navigation satellite system (GNSS) signal.
23 . A server for position information authentication of a User Equipment (UE) for a location application comprising:
a transceiver; a memory; and one or more processors communicatively coupled with the transceiver and the memory, wherein the one or more processors are configured to:
receive, from the UE, a digitally signed position report message indicating a position estimate of the UE and a unique identification (ID) associated with the UE, wherein the digitally signed position report message is digitally signed using a digital signature generated using a first private key of the UE;
based on the first private key having been compromised, receive, from the UE, a subsequent digitally signed position report message, wherein the subsequent digitally signed position report message is digitally signed using a digital signature generated based on a second private key;
determine whether to authenticate the subsequent digitally signed position report message using the unique ID and a public key lookup table that associates a respective public key with the unique ID of the UE;
responsive to determining to authenticate the subsequent digitally signed position report message, execute the location application, wherein the location application is configured to authenticate the subsequent digitally signed position report message based on the respective public key and provide one or more location-based services to the UE using the position estimate.
24 . The server of claim 23 , wherein the unique ID comprises:
international mobile equipment identity (IMEI) of the UE; international mobile subscriber identity (IMSI) of the UE; media access control (MAC) address; or any combination thereof.
25 . The server of claim 23 , wherein the digitally signed position report message and the subsequent digitally signed position report message are provided by a security module of the UE.
26 . The server of claim 23 , wherein the one or more processors are further configured to:
responsive to a determination that the second private key has been compromised, disable the UE from accessing the location application.
27 . The server of claim 23 , wherein the location-based services include at least one of: navigation, search, location-based advertising, or social networking.
28 . The server of claim 23 , wherein the position estimate is determined using a reference signal comprising a global navigation satellite system (GNSS) signal.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.